Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2017-04-02	BackBox OS – Denial of Service	dos	linux	FarazPajohan
2017-04-02	Linux Kernel (PonyOS 4.0) – ‘fluttershy’ LD_LIBRARY_PATH Local Privilege Escalation	local	linux	Hacker Fantastic
2017-04-02	Pixie 1.0.4 – Arbitrary File Upload	webapps	php	rungga_reksya
2017-04-02	Zyxel, EMG2926 < V1.00(AAQT.4)b8 - OS Command Injection	webapps	hardware	trevor Hough
2017-03-31	Membership Formula – ‘order’ SQL Injection	webapps	php	Ihsan Sencan
2017-03-31	Splunk Enterprise – Information Disclosure	webapps	multiple	hyp3rlinx
2017-03-31	Microsoft Xbox One 10.0.14393.2152 – Code Execution (PoC)	local	hardware	unknownv2
2017-03-30	Apple macOS/IOS 10.12.2 (16C67) – ‘mach_msg’ Heap Overflow	dos	multiple	Google Security Research
2017-03-29	Sync Breeze Enterprise 9.5.16 – ‘GET’ Remote Buffer Overflow (SEH)	remote	windows	Daniel Teixeira
2017-03-29	Opensource Classified Ads Script – ‘keyword’ SQL Injection	webapps	php	Ihsan Sencan
2017-03-29	EyesOfNetwork (EON) 5.1 – SQL Injection	webapps	php	Dany Bach
2017-03-29	Sync Breeze Enterprise 9.5.16 – ‘Import Command’ Local Buffer Overflow	local	windows	Daniel Teixeira
2017-03-29	DiskBoss Enterprise 7.8.16 – ‘Import Command’ Local Buffer Overflow	local	windows	Daniel Teixeira
2017-03-29	Disk Sorter Enterprise 9.5.12 – ‘Import Command’ Local Buffer Overflow	local	windows	Daniel Teixeira
2017-03-28	Microsoft Outlook – HTML Email Denial of Service	dos	windows	Haifei Li
2017-03-28	VX Search Enterprise 9.5.12 – ‘Verify Email’ Buffer Overflow	dos	windows	ScrR1pTK1dd13
2017-03-28	Intermec PM43 Industrial Printer – Local Privilege Escalation	local	hardware	Jean-Marie Bourbon
2017-03-28	MikroTik RouterBoard 6.38.5 – Denial of Service	dos	hardware	FarazPajohan
2017-03-28	DzSoft PHP Editor 4.2.7 – File Enumeration	remote	windows	hyp3rlinx
2017-03-27	Apple Safari – Out-of-Bounds Read when Calling Bound Function	dos	multiple	Google Security Research
2017-03-27	Apple Safari – Builtin JavaScript Allows Function.caller to be Used in Strict Mode	dos	multiple	Google Security Research
2017-03-27	Apple Safari – ‘DateTimeFormat.format’ Type Confusion	dos	multiple	Google Security Research
2017-03-27	Samba 4.5.2 – Symlink Race Permits Opening Files Outside Share Directory	remote	multiple	Google Security Research
2017-03-27	Microsoft IIS 6.0 – WebDAV ‘ScStoragePathFromUrl’ Remote Buffer Overflow	remote	windows	Zhiniang Peng & Chen Wu
2017-03-27	Disk Sorter Enterprise 9.5.12 – Local Buffer Overflow	dos	windows	Nassim Asrir
2017-03-27	CouponPHP CMS 3.1 – ‘code’ SQL Injection	webapps	php	Ihsan Sencan
2017-03-27	Professional Bus Booking Script – ‘hid_Busid’ SQL Injection	webapps	php	Ihsan Sencan
2017-03-27	inoERP 0.6.1 – Cross-Site Scripting / Cross-Site Request Forgery / SQL Injection / Session Fixation	webapps	php	Tim Herres
2017-03-27	Nuxeo 6.0/7.1/7.2/7.3 – Remote Code Execution (Metasploit)	webapps	jsp	Sysdream
2017-03-27	EyesOfNetwork (EON) 5.0 – SQL Injection	webapps	php	Sysdream
2017-03-27	EyesOfNetwork (EON) 5.0 – Remote Code Execution	webapps	php	Sysdream
2017-03-27	QNAP QTS < 4.2.4 - Domain Privilege Escalation	local	hardware	Pasquale Fiorillo
2017-03-27	Github Enterprise – Default Session Secret and Deserialization (Metasploit)	remote	linux	Metasploit
2017-03-26	Alibaba Clone Script – SQL Injection	webapps	php	Ihsan Sencan
2017-03-26	Just Another Video Script 1.4.3 – SQL Injection	webapps	php	Ihsan Sencan
2017-03-26	Microsoft Visual Studio 2015 update 3 – Denial of Service	dos	windows	Peter Baris
2017-03-26	Tour Package Booking 1.0 – SQL Injection	webapps	php	Ihsan Sencan
2017-03-26	D-Link DCS-936L Network Camera – Cross-Site Request Forgery	webapps	hardware	SlidingWindow
2017-03-26	Hotel Booking Script 1.0 – SQL Injection	webapps	php	Ihsan Sencan
2017-03-26	Delux Same Day Delivery Script 1.0 – SQL Injection	webapps	php	Ihsan Sencan
2017-03-26	Parcel Delivery Booking Script 1.0 – SQL Injection	webapps	php	Ihsan Sencan
2017-03-26	Courier Tracking Software 6.0 – SQL Injection	webapps	php	Ihsan Sencan
2017-03-26	Php Real Estate Property Script – SQL Injection	webapps	php	Ihsan Sencan
2017-03-26	B2B Marketplace Script 2.0 – SQL Injection	webapps	php	Ihsan Sencan
2017-03-25	Adult Tube Video Script – SQL Injection	webapps	php	Ihsan Sencan
2017-03-25	Fortinet FortiClient 5.2.3 (Windows 10 x64 Post-Anniversary) – Local Privilege Escalation	local	windows_x86-64	sickness
2017-03-25	Fortinet FortiClient 5.2.3 (Windows 10 x64 Pre-Anniversary) – Local Privilege Escalation	local	windows_x86-64	sickness
2017-03-24	Logsign 4.4.2/4.4.137 – Remote Command Injection (Metasploit)	remote	Python	Mehmet Ince
2017-03-24	Netgear WNR2000v5 – ‘hidden_lang_avi’ Remote Stack Overflow (Metasploit)	remote	hardware	Pedro Ribeiro
2017-03-24	Miele Professional PG 8528 – Directory Traversal	remote	hardware	Jens Regel